958cc08e1ff5fdf6940c0666cb5666da4da6e95da6c503d52c880e17a3795e04

Sharing

Copy URL

Twitter E-mail

General

Target

wave source.rar
Size

3.7MB
Sample

240411-lf792sbg9s
MD5

83dc7770ccd818f6ef43b42ce5d2ec84
SHA1

9d4afea9e577fb51422c10ca024dcf28a6a6fc90
SHA256

958cc08e1ff5fdf6940c0666cb5666da4da6e95da6c503d52c880e17a3795e04
SHA512

3866e20830e5062a6d8a32b01f88a483e643c5e08fc4a95f2fd2fa60a2040d10e98b0f64737511bf0ebf22d0a03b55979253d2d59596b7ebd937a86f34bf2abb
SSDEEP

98304:hVvm9G/DvEPWbu0sWeKL76DzvDhn+2G4Op0q:nOYsPWbu0sWlL76DR+2m0q

Score

6^/10

Malware Config

Targets

- Target
  
  wave source/SynapseXtra/ClientInformationBehavior.cs
- Size
  
  502B
- MD5
  
  db96fa3a511ebb3a3b377ca58753fda0
- SHA1
  
  04d3689bb056ab1ca3c2803cfd096d8a774e6bdb
- SHA256
  
  cfbb79f9592d3424e8151f118683c1d8a2d3a65dca1181717736b3548921f17c
- SHA512
  
  50a2c759be6079f7ea1167d90a05ad72c464d7b7f5ea375afcad6e6af05b77682a9015c16c57b5dd3f0accafec19ae33c30e768d69e0acd1143c59f448810f6d
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  wave source/Wave.Classes.Implementations/RobloxInstance.cs
- Size
  
  1KB
- MD5
  
  07ef18a76ecb2373711c49339b024c1d
- SHA1
  
  0bfcf9905a6a0bfe626f29945815193e5c2688d4
- SHA256
  
  72414bc99241eb38e1394701d44d2349ddafe43c0dd7b27cdb043dedea025330
- SHA512
  
  1b1e824776b9a9a4765f0979d11ba01a46e30437ffc500bc1e16d134ce0013b684a5c7da9a19489fc4c3cb5e85cf4606e5c610df681e9887725fdcf9162b48da
Score

1^/10
behavioral3 behavioral4
- Target
  
  wave source/Wave.Controls.AI/AIBotMessage.cs
- Size
  
  597B
- MD5
  
  dc5e55c33a89cf145e062edca4483a30
- SHA1
  
  64eb6faf8ea96ededbe0d9eca98ff0458117dac0
- SHA256
  
  52b35fe2dc883afe54dc8fd7d588cea13de1921dbc17231c97e637c52aecf838
- SHA512
  
  2a2576a1a47f083721a2b85653eafad89c0911f003f3e0e112c50203b4550d38d9f69e3b39527cb7207d96718a1fe9b74a901da3690f26981003ec1dc2a7bb45
Score

1^/10
behavioral5 behavioral6
- Target
  
  wave source/Wave.Controls.AI/AIUserMessage.cs
- Size
  
  932B
- MD5
  
  3df552f4208ccae536a7b6738cb1af17
- SHA1
  
  b2ec111617cbd1d0b985f7cbc05988cc2ad2c8d7
- SHA256
  
  96cfa4caf562b97996898f065766b1f38c57e5d31e33f33f19898bd23b776e87
- SHA512
  
  6d88068012d912b8465d14990b448cb21f26f592803f83ada1fadb90c3180c7e2bbe8f99f94974eb62a356bc3daeea0fd0e6e1fec134a597e9d1863ab3e01584
Score

1^/10
behavioral7 behavioral8
- Target
  
  wave source/Wave.Controls.Settings/SettingButton.cs
- Size
  
  1KB
- MD5
  
  89b4be6602de1935e637c74ca8d78438
- SHA1
  
  1d7dc8a990b8df92c8ab17dafd57453bfaf7c809
- SHA256
  
  5a4276e880e89ff35d60d28176bbc2c049d9c0b8bfaaeec9ad21ed88cbfe4207
- SHA512
  
  f0b4a2daa4e024369a1d836630ac7527f8011014b9e7ad3bc00f10dcaf5967995e7d1d25c4eccdd1a734e52817fa1b05fa094e7112c3cfbbed82c36f63ae265b
Score

1^/10
behavioral10 behavioral9
- Target
  
  wave source/Wave.Controls.Settings/SettingCheckBox.cs
- Size
  
  1KB
- MD5
  
  fc5a706504fe650fd1ad721f416c9222
- SHA1
  
  4e216b90ffb0d15a657bbc1cad7a0df683df0518
- SHA256
  
  0ecfbcf4bbd136269ec5d020fd12f88f6d0fc3ecc83d0ecac62789501f1fa91d
- SHA512
  
  abb97b428c0d5cf720372ad0292ab432c9a8ef690467147530256cb7de7059c95f3f687a740f4795cdb580fecbe454e0bd9554eea8071e3624b3d2e18804d8ab
Score

1^/10
behavioral11 behavioral12
- Target
  
  wave source/Wave.Controls.Settings/SettingSlider.cs
- Size
  
  3KB
- MD5
  
  c827e279ef97ad5e4ca39c5aeb8dda01
- SHA1
  
  41a4ddcf0f241c6c5f7f95da3953b14fc9206aec
- SHA256
  
  f1dc9b0236f699b41e84a099c5134bba82ad93105a9529fb7b947915bade996c
- SHA512
  
  b5a396db1dcaeaa41785ddd4a04830b8cd6f0679f083f4df009b225a21f6d09959cd389e726c34b106a41dfd828f629c6eba523c48b0c9e9981976cb2c5f0408
Score

1^/10
behavioral13 behavioral14
- Target
  
  wave source/Wave.Controls/HeaderCheckBox.cs
- Size
  
  2KB
- MD5
  
  4b50cbcba0a532d3ea1b6255fed4e267
- SHA1
  
  9a6fc2953ce57b483f93f505490a472041beda81
- SHA256
  
  29ae6eae79f04e685ee9d61db3c40ae9cd7a3086bfdd2ea71d809e59fa4f3d6f
- SHA512
  
  5629349d3cb2a6c0a841f408e05f16c9fcd7daec497f1283267490053bc09f202367c00f464fb6878b95617c1a1abd904cbd19444701d8395527f5666a3548e2
Score

1^/10
behavioral15 behavioral16
- Target
  
  wave source/Wave.Controls/InstancePanel.cs
- Size
  
  2KB
- MD5
  
  63189bc8b88c9d3e47267e1b4c4af1b0
- SHA1
  
  4c51b20babaa2a868c90d9a99b883a1c3b1aa25b
- SHA256
  
  1e70cd0e0d1c17a1d25c688efd12bd401352cece1f3f1c607f6b7d5f1b196248
- SHA512
  
  a5f52c28207a042d1b1995735bc33c3c34d98bf2fd6e15c607837fdae009233ccaa95b545e410d39870ddc8b2ab3f0fa801100ef0a5c0ffc6ada05b89fc29fa4
Score

1^/10
behavioral17 behavioral18
- Target
  
  wave source/Wave.Controls/TabCheckBox.cs
- Size
  
  3KB
- MD5
  
  34e5c7616bc306cf88523d99d2607f6a
- SHA1
  
  4a263c36d83cfdb5abb60c3200056f3d585d6f1d
- SHA256
  
  36269ed77e9ad82d3841287a65ac813df20aaba5f9757c46c25317822fb441fa
- SHA512
  
  e2fd0f000944f5b4ccb2e947263d273238c1b393e5a29bf5b674315fe62185138f064141037566cd94ebe355c08a25c3a0441bf16f7348871ae0e500f96766ce
Score

1^/10
behavioral19 behavioral20
- Target
  
  wave source/Wave.Properties/Resources.cs
- Size
  
  982B
- MD5
  
  c99941739ce1c814361357ba076647a5
- SHA1
  
  bc33129223d9e64eca6376cf8f1029a60a33a10c
- SHA256
  
  9d98ddafaee0ee08cf137a8f152702db204e8a9e05e35c05af83b552c59918cd
- SHA512
  
  e8045716ae3ca72d0830666bd6dbfd3e413f758b8aa2fa103f82d7dded7b02f33c0488c8bc7a411d6356709809e926128797f6b76fcf1c9e4af1caaa530d6d25
Score

1^/10
behavioral21 behavioral22
- Target
  
  wave source/Wave/MainWindow.cs
- Size
  
  31KB
- MD5
  
  0cffdc41f7498c92f96dcf22f5151817
- SHA1
  
  1b97658b36a88f83a9d0142d4651142bdc83ed46
- SHA256
  
  24e0d4ce0b7ece075048f8f81a3d984dcf5cd55698e81ffa0fcb8cdbf9322fab
- SHA512
  
  d261db4e0ac7785fd1850878a73d8fd9cd413bb466b09f31858e51692f68cfa7e9b87d01432f7a888739e0b35a991427f8fdeb3904be47e47cbab52b45fdc0cf
- SSDEEP
  
  768:80n4TS+3WTmU5nScOg3gy3lXryXbt7fZIbl8id3IKbW/m21RiJrornf54vQfvt5c:t6bS9CzZIp8ippbWA
Score

1^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24